Message ID | 20230309174655.69816-2-pablo@netfilter.org |
---|---|
State | Accepted |
Delegated to: | Pablo Neira |
Headers | show |
Series | [net,1/4] netfilter: nft_nat: correct length for loading protocol registers | expand |
Hello: This series was applied to netdev/net.git (main) by Pablo Neira Ayuso <pablo@netfilter.org>: On Thu, 9 Mar 2023 18:46:52 +0100 you wrote: > From: Jeremy Sowden <jeremy@azazel.net> > > The values in the protocol registers are two bytes wide. However, when > parsing the register loads, the code currently uses the larger 16-byte > size of a `union nf_inet_addr`. Change it to use the (correct) size of > a `union nf_conntrack_man_proto` instead. > > [...] Here is the summary with links: - [net,1/4] netfilter: nft_nat: correct length for loading protocol registers https://git.kernel.org/netdev/net/c/068d82e75d53 - [net,2/4] netfilter: nft_masq: correct length for loading protocol registers https://git.kernel.org/netdev/net/c/ec2c5917eb85 - [net,3/4] netfilter: nft_redir: correct length for loading protocol registers https://git.kernel.org/netdev/net/c/1f617b6b4c7a - [net,4/4] netfilter: nft_redir: correct value of inet type `.maxattrs` https://git.kernel.org/netdev/net/c/493924519b1f You are awesome, thank you!
diff --git a/net/netfilter/nft_nat.c b/net/netfilter/nft_nat.c index 047999150390..5c29915ab028 100644 --- a/net/netfilter/nft_nat.c +++ b/net/netfilter/nft_nat.c @@ -226,7 +226,7 @@ static int nft_nat_init(const struct nft_ctx *ctx, const struct nft_expr *expr, priv->flags |= NF_NAT_RANGE_MAP_IPS; } - plen = sizeof_field(struct nf_nat_range, min_addr.all); + plen = sizeof_field(struct nf_nat_range, min_proto.all); if (tb[NFTA_NAT_REG_PROTO_MIN]) { err = nft_parse_register_load(tb[NFTA_NAT_REG_PROTO_MIN], &priv->sreg_proto_min, plen);